Cloud Computing Security From Single to Multi-Clouds

(1)

Guided By:

Prof. NAVEEN

Govt Sri Krishna Rajendra Silver Jubliee Technological Institute K.R CIRCLE

Bangalore-560 001

Group Member Usn

srinivas.p 1sk09cs048

srinivas 1sk09cs047

Sharath.g.s 1sk09cs038

shashikanth 1sk09cs41

DEPARTMENT OF COMPUTER ENGINEERING

Cloud Computing Security: From Single to Multi-Clouds 1

(2)

Introduction

What is Cloud Computing ? Why it is term as Cloud ?

Problem of service unavailability in single Cloud.

This project will help to the end user as well as customer.

(4)

Literature Survey :

Name, Author and Publication

Methodologies Advantages Disadvantages

A Practical Guide to cloud

computing Security

By- Carl Almond August 2009

Giving risk and mitigation

Security about the single cloud is

maintained efficiently

Points only the security of single cloud

Security Challenges for public cloud

By- Kui Ren, Cong Wang Jan 2012 Outlineing Challangs & motivate further investigation Address several security challenges That current research aren’t addressing As maintaining security in public cloud ,urgency of data not comes into

picture

Foundations and

Properties of Shamir’s Secret Sharing Scheme

By- Dan Bogdanov May 2007 Encryption & Decryption Excellent Framework From Proofs and Application Properties related to Shamir’s Secrete Sharing

Cloud Computing Security: From Single to

(5)

Existing System

 Cloud ( most probably single cloud )

Makes low cost processing of data.

Gives delivery models as PaaS, SaaS, IaaS

Disadvantages:

1.

Service availability failure

2.

Possibility that there are malicious insiders in the single

cloud.

(6)

Proposed System



Problem Definition :

As data storage and processing concern the cloud plays vital role. But along with this advantage develop a system which focus the security for single as well as multi-cloud. So for this purpose we have to develop the system which gives

1. Service Availability 2. Data Security

3. Data Integrity

(7)

Features :

 Service Availability

 Ability to run custom application using service providers resources

 Data security

 Data Integrity

(8)

Primary Objective :

 Make the assurance that data is in secure and stable form.

Cloud Computing Security: From Single to Multi-clouds 8

Secondary objective :

Make service availability even when the one cloud fails

(9)

Algorithm Analysis :

 Secret Sharing Algorithms

Encryption:

Step1: input- secrete key k, number of participant n. Step2: select random values a1,a2…,an.

Step3: Generate polynomial string to share the secrete into parts. Step4: Secrete shared.

Decryption:

Step1: Generate polynomial string from secrete . Step2: Add the n polynomial.

(10)

System Architecture :

(11)

S/W Requirement :



Operating System

:

Windows95/98/2000/XP



Application Server

:

Tomcat5.0/6.X



Front End

:

HTML, Java,

JSP,AJAX



Scripts

:

JavaScript.



Server side Script

:

Java Server Pages.



Database Connectivity :

Mysql.

(12)

H/W System Configuration :



Processor

:

Pentium –III



Speed

:

1.1 GHz



RAM

:

256 MB(min)



Hard Disk

:

20 GB



Floppy Drive

:

1.44 MB



Monitor

:

SVGA

(13)

Data Flow Diagrams :

(14)

Multi-clouds 14

(15)

ER Diagram :

(16)

Sequence Diagram :

Cloud Client Cloud Administrator End User

1 : Register() 2 : Request for Space

3 : Space Allocation() 4 : Login()

5 : Session Credentials 6 : Browse service offering 7 : List of service offering auth to user 8 : Get details & request service offering ID

9 : Service Offering, Supported Operation()

10 : Request for service() 11 : Forward Request of end user

12 : Processing()

(17)

Class Diagram :

Contract +id: String +name: String +description: String +creator: String +acceptanceDate: Date +ServiceStartDate: Date +ServiceEndDate: Date +billingInfo: String +RenewalInfo: String +ProviderId: StringIDRef +ConsumerId: StringIDRef +OfferingId: StringIDRef +GetInfo() +ShowInfo() +UpdateInfo() +DeleteInfo() Provider Information +ProviderId: String +name: String +address: String +ContactInformation: String AgreesTo ConsumerInformation +ConsumerId: String +name: String +address: String +billingInfo: String +ContactInformation: String +GetInfo() +ShowInfo() AgreesTo Relationship +Id: String +name: String +Description: String +ProviderId: StringIDRef +ConsumerID: StringIDRef Is Consumer 0..1 * Provider * 0...1 Service Request +Id: String +name: String +description: String +Status: StringEnumeration +ConsumerId: StringIdRef +contractId: StringIdRef Requested Under * 1 Service Offering +Id: StringId +name: String +description: String +creator: String +version: String +CreateDate: Date +providerId: StringIdRef * Contract For 1 Service Catalog +Id: String +name: String +description: String +URL: anyURL +ProviderId: StringIdRef * Contains Contains * Contains *

(18)

Life Cycle :

(19)

Advantages :

1. Data Integrity.

2. Service Availability.

3. The user runs custom applications using the service provider’s resources.

4. Cloud service providers should ensure the security of their customers’ data and should be responsible if any security risk affects their

customers’ service infrastructure.

(20)

Disadvantages

1. Possibility of loss and change of data if cloud provider is not trusted.

2. privacy and security issues as a matter of high and urgent priority.

(21)

Project Plan

Cloud Computing Security : From single to multi-clouds 21

Sr.no Activity feb march april October

1 Problem statement formation 2 Requirement gathering 3 Requirement analysis 4 Learning Java, J2EE 5 Generation of Use cases 6 Identification of entity

relationship

7 Identification of Classes 8 Learning FTP & FileZilla 9 Implementation of

administrator use case

The objective of s/w project planning is to provide a framework that enables to make reasonable estimate of resources, cost and schedule

(22)

Conclusion :

 This project focuses on the issues related to the data security aspect of cloud computing. As data and information will be shared with a third party, cloud computing users want to avoid an untrusted cloud

provider. Protection of user’s important data is the most significant part of this project.

(23)

References :

 IEEE Transaction on :

1. Cloud computing security : from single to multi-cloud

2. Security Challenges for public cloud

3. Foundations and Properties of Shamir’s Secret Sharing Scheme

(24)

Cloud Computing Security From Single to Multi-Clouds

Contents :



Introduction



Literature survey



Existing System



problem definition



Software Architecture



S/w & H/w Requirement



UML Diagram



SDLC and project plan



Conclusion



References

Introduction

Literature Survey :

Existing System

Makes low cost processing of data.

Gives delivery models as PaaS, SaaS, IaaS

Disadvantages:

Service availability failure

Possibility that there are malicious insiders in the single

cloud.

Proposed System



Problem Definition :

Features :

Primary Objective :

Secondary objective :

Algorithm Analysis :

System Architecture :

S/W Requirement :



Operating System

:

Windows95/98/2000/XP



Application Server

:

Tomcat5.0/6.X



Front End

:

HTML, Java,

JSP,AJAX



Scripts

:

JavaScript.



Server side Script

:

Java Server Pages.



Database Connectivity :

Mysql.

H/W System Configuration :



Processor

:

Pentium –III



Speed

:

1.1 GHz



RAM

:

256 MB(min)



Hard Disk

: